← CVECheck
HomeVulnerabilities

CVE-2001-1049 — HIGH severity vulnerability (Phorecast PHP script before 0.40 allows remote attackers to)

Phorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

CVE IDCVE-2001-1049
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-10-02
Last modified2026-04-16
DescriptionPhorecast PHP script before 0.40 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →